[go: up one dir, main page]

CN115699699A - Virtual private cloud and cloud data center communication, configuration method and related device - Google Patents

Virtual private cloud and cloud data center communication, configuration method and related device Download PDF

Info

Publication number
CN115699699A
CN115699699A CN202080097806.0A CN202080097806A CN115699699A CN 115699699 A CN115699699 A CN 115699699A CN 202080097806 A CN202080097806 A CN 202080097806A CN 115699699 A CN115699699 A CN 115699699A
Authority
CN
China
Prior art keywords
address
vpc
private network
message
subnet
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN202080097806.0A
Other languages
Chinese (zh)
Other versions
CN115699699B (en
Inventor
刘海霞
郜忠华
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Huawei Cloud Computing Technologies Co Ltd
Original Assignee
Huawei Cloud Computing Technologies Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Huawei Cloud Computing Technologies Co Ltd filed Critical Huawei Cloud Computing Technologies Co Ltd
Priority to CN202310745229.7A priority Critical patent/CN116800712A/en
Publication of CN115699699A publication Critical patent/CN115699699A/en
Application granted granted Critical
Publication of CN115699699B publication Critical patent/CN115699699B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2521Translation architectures other than single NAT servers
    • H04L61/2528Translation at a proxy
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/08Configuration management of networks or network elements
    • H04L41/0895Configuration of virtualised networks or elements, e.g. virtualised network function or OpenFlow elements
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4633Interconnection of networks using encapsulation techniques, e.g. tunneling
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L12/00Data switching networks
    • H04L12/28Data switching networks characterised by path configuration, e.g. LAN [Local Area Networks] or WAN [Wide Area Networks]
    • H04L12/46Interconnection of networks
    • H04L12/4641Virtual LANs, VLANs, e.g. virtual private networks [VPN]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L45/00Routing or path finding of packets in data switching networks
    • H04L45/74Address processing for routing
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2514Translation of Internet protocol [IP] addresses between local and global IP addresses
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/2521Translation architectures other than single NAT servers
    • H04L61/2535Multiple local networks, e.g. resolving potential IP address conflicts
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/09Mapping addresses
    • H04L61/25Mapping addresses of the same type
    • H04L61/2503Translation of Internet protocol [IP] addresses
    • H04L61/255Maintenance or indexing of mapping tables
    • H04L61/2553Binding renewal aspects, e.g. using keep-alive messages
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L61/00Network arrangements, protocols or services for addressing or naming
    • H04L61/50Address allocation
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks
    • H04L41/22Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks comprising specially adapted graphical user interfaces [GUI]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Data Exchanges In Wide-Area Networks (AREA)
  • Telephonic Communication Services (AREA)

Abstract

The embodiment of the invention provides a communication and configuration method of a virtual private cloud and a data center under the cloud and a related device, wherein the configuration method comprises the following steps: binding a private network address in a first VPC with a first address, and binding a private network address in a subnet with a second address, wherein the first address and the second address are addresses belonging to a private network address field of a second VPC, and the first address is different from the second address; and configuring a source address of a message sent by the first VPC to the subnet from a private network address in the first VPC to a first address, and configuring a destination address from a second address to a private network address in the subnet. Through the scheme, the technical problem that communication cannot be achieved due to the fact that private network addresses are overlapped between the VPC and the data center under the cloud can be solved.

Description

PCT国内申请,说明书已公开。PCT domestic application, specification has been published.

Claims (22)

  1. A configuration method for communication between a Virtual Private Cloud (VPC) and a data center under the cloud is characterized in that a first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through a second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the subnet, and the method comprises the following steps:
    binding a private network address in the first VPC with a first address, and binding the private network address in the subnet with a second address, wherein the first address and the second address are addresses belonging to a private network address field of the second VPC, and the first address is different from the second address;
    and configuring a source address of a message sent by the first VPC to the subnet from a private network address in the first VPC to the first address, and configuring a destination address from the second address to the private network address in the subnet.
  2. The method of claim 1, further comprising:
    configuring a remote connection gateway on the second VPC, wherein the remote connection gateway is remotely connected with the subnet;
    configuring routing rules on the second VPC, the routing rules on the second VPC including: and forwarding the message with the destination address as the first address to the first VPC, and forwarding the message with the destination address as the private network address in the subnet to the remote connection gateway.
  3. The method of claim 2, further comprising:
    configuring a Network Address Translation (NAT) gateway in the first VPC, wherein the private network address of the NAT gateway is configured as the first address, and the private network address of the remote connection gateway is configured as the second address;
    then, binding the private network address in the first VPC with the first address, and binding the private network address in the subnet with the second address includes: configuring a first message processing rule and a second message processing rule on the NAT gateway, wherein the first message processing rule comprises: converting a source address of an outgoing message from a private network address in the first VPC into the first address, converting a destination address from the second address into a private network address in the subnet, and sending the modified outgoing message to a router of the second VPC; the second message processing rule comprises: and modifying the source address of the incoming message from the private network address in the subnet to the second address, converting the destination address from the first address to the private network address in the first VPC, and sending the modified incoming message to the router of the first VPC.
  4. The method of claim 3, further comprising:
    configuring routing rules on a router of the first VPC, the routing rules on the router of the first VPC including: and forwarding the message with the destination address as the second address to the NAT gateway, and forwarding the message with the destination address as the private network address in the first VPC to the subnet in the first VPC.
  5. A configuration method for communication between a Virtual Private Cloud (VPC) and a data center under the cloud is characterized in that a first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through a second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the second VPC, and the method comprises the following steps:
    configuring a Network Address Translation (NAT) gateway in the first VPC and a remote connection gateway in the second VPC, wherein a first address is configured for the NAT gateway, a second address is configured for the remote connection gateway, the first address and the second address belong to a private network address field of the second VPC, and the first address and the second address are different;
    configuring a first message processing rule and a second message processing rule on the NAT gateway, wherein the first message processing rule comprises: converting a source address of an outgoing message into the first address from a private network address in the first VPC, converting a destination address into a private network address in the subnet from the second address, and sending the modified outgoing message to a router of the second VPC; the second message processing rule comprises: and modifying the source address of the incoming message from the private network address in the subnet to the second address, converting the destination address from the first address to the private network address in the first VPC, and sending the modified incoming message to the router of the first VPC.
  6. The method of claim 5, further comprising: and configuring the connection between the NAT gateway and the second VPC, and configuring the remote connection between the remote connection gateway and the subnet remote connection of the data center under the cloud.
  7. A communication method of a Virtual Private Cloud (VPC) and a data center under the cloud is characterized in that a first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through a second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the subnet, and the method comprises the following steps:
    the first VPC sends a message, wherein the source address of the message is a first address, the destination address of the message is a private network address in the subnet, the private network address in the first VPC is bound with the first address, and the first address is an address belonging to a private network address section of the second VPC;
    the second VPC receives the message and forwards the message to a private network address in the subnet according to a preset routing rule, wherein the routing rule of the second VPC comprises the following steps: and forwarding a message with a destination address as a private network address in the subnet to the subnet, wherein the second VPC is remotely connected with the subnet.
  8. The method of claim 7, wherein the routing rule further comprises: forwarding a message with a destination address as the first address to the first VPC;
    the method further comprises the following steps:
    the subnet sends a response message to the second VPC, wherein the source address of the response message is a private network address in the subnet, and the destination address is the first address;
    and the second VPC receives the response message and forwards the response message to the first VPC according to the routing rule.
  9. A method for communication between a Virtual Private Cloud (VPC) and a data center under the cloud is characterized in that a first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through a second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the subnet, the first VPC is provided with a Network Address Translation (NAT) gateway, the second VPC is provided with a remote connection gateway, the NAT gateway is configured with a first address, the remote connection gateway is configured with a second address, the first address and the second address belong to the private network address field of the second VPC, the first address is different from the second address, and the remote connection gateway is remotely connected with the subnet, and the method comprises the following steps:
    the router of the first VPC receives a message sent by a first virtual machine of the first VPC, wherein a source address of the message is a private network address of the first virtual machine, and a destination address of the message is the second address;
    the router of the first VPC forwards the message to the NAT gateway according to a first routing rule;
    the NAT gateway modifies the source address of the message into the first address, modifies the destination address into the private network address of the second device in the subnet, and forwards the modified message to the router of the second VPC, wherein the router of the second VPC is provided with a second routing rule, and the first routing rule comprises: the packet whose destination address belongs to the private network address field of the second VPC needs to be forwarded to the NAT gateway, and the second routing rule includes: and the message of which the destination address belongs to the private network address field of the subnet needs to be forwarded to the remote connection gateway of the second VPC.
  10. The method of claim 9, further comprising:
    the router of the second VPC sends the received message to the remote connection gateway according to the second routing rule;
    and the remote connection gateway receives the message and sends the message to the subnet.
  11. A configuration device for communication between a Virtual Private Cloud (VPC) and a data center under the cloud is characterized in that a first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through a second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the subnet, and the configuration device comprises:
    an address binding module, configured to bind a private network address in the first VPC with a first address, and bind a private network address in the subnet with a second address, where the first address and the second address are addresses belonging to a private network address field of the second VPC, and the first address is different from the second address;
    and the address configuration module is used for configuring a source address of a message sent by the first VPC to the subnet from a private network address in the first VPC to the first address, and configuring a destination address from the second address to the private network address in the subnet.
  12. The apparatus of claim 11, further comprising a gateway configuration module and a routing rule configuration module,
    the gateway configuration module is used for configuring a remote connection gateway on the second VPC, and the remote connection gateway is remotely connected with the subnet;
    the routing rule configuration module is configured to configure a routing rule on the second VPC, where the routing rule on the second VPC includes: and forwarding the message with the destination address as the first address to the first VPC, and forwarding the message with the destination address as the private network address in the subnet to the remote connection gateway.
  13. The apparatus of claim 12,
    the gateway configuration module is further configured to configure a Network Address Translation (NAT) gateway in the first VPC, wherein a private network address of the NAT gateway is configured as the first address, and a private network address of the remote connection gateway is configured as the second address;
    the address binding module is further configured to configure a first packet processing rule and a second packet processing rule on the NAT gateway, where the first packet processing rule includes: converting a source address of an outgoing message from a private network address in the first VPC into the first address, converting a destination address from the second address into a private network address in the subnet, and sending the modified outgoing message to a router of the second VPC; the second packet processing rule includes: and modifying the source address of the incoming message from the private network address in the subnet to the second address, converting the destination address from the first address to the private network address in the first VPC, and sending the modified incoming message to the router of the first VPC.
  14. The apparatus of claim 13,
    the routing rule configuration module is further configured to configure a routing rule on a router of the first VPC, where the routing rule on the router of the first VPC includes: and forwarding the message with the destination address as the second address to the NAT gateway, and forwarding the message with the destination address as the private network address in the first VPC to a second subnet in the first VPC.
  15. A configuration device for communication between a Virtual Private Cloud (VPC) and a data center under the cloud is characterized in that a first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through a second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the second VPC, and the configuration device comprises:
    a gateway configuration module, configured to configure a NAT gateway in the first VPC, and configure a remote connection gateway in the second VPC;
    an address configuration module, configured to configure a first address for the NAT gateway and a second address for the remote connection gateway, where the first address and the second address belong to a private network address field of the second VPC, and the first address and the second address are different;
    an address binding module, configured to configure a first packet processing rule and a second packet processing rule on the NAT gateway, where the first packet processing rule includes: converting a source address of an outgoing message into the first address from a private network address in the first VPC, converting a destination address into a private network address in the subnet from the second address, and sending the modified outgoing message to a router of the second VPC; the second packet processing rule includes: and modifying the source address of the incoming message from the private network address in the subnet to the second address, converting the destination address from the first address to the private network address in the first VPC, and sending the modified incoming message to the router of the first VPC.
  16. The apparatus of claim 15,
    the gateway configuration module is further configured to configure connection between the NAT gateway and the second VPC, and configure remote connection between the remote connection gateway and the subnet remote connection of the off-cloud data center.
  17. A communication system of a Virtual Private Cloud (VPC) and a data center under the cloud is characterized by comprising a first VPC and a second VPC, subnets of the first VPC and the data center under the cloud with the same private network address field communicate through the second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the subnets, wherein,
    the first VPC sends a message, wherein a source address of the message is a first address, a destination address of the message is a private network address in the subnet, the private network address in the first VPC is bound with the first address, and the first address is an address belonging to a private network address section of the second VPC;
    the second VPC receives the packet, and forwards the packet to a private network address in the subnet according to a preset routing rule, where the routing rule of the second VPC includes: and forwarding a message with a destination address as a private network address in the subnet to the subnet, wherein the second VPC is remotely connected with the subnet.
  18. The system of claim 17, wherein the routing rule further comprises: forwarding a message with a destination address as the first address to the first VPC;
    the second VPC receives a response message sent by the subnet, wherein the source address of the response message is a private network address in the subnet, and the destination address is the first address;
    and the second VPC forwards the response message to the first VPC according to the routing rule.
  19. A system for communicating a Virtual Private Cloud (VPC) with a data center under the cloud is characterized by comprising a first VPC and a second VPC, wherein the first VPC with the same private network address field and a subnet of the data center under the cloud are communicated through the second VPC, the private network address field of the second VPC is different from the private network address fields of the first VPC and the subnet, the first VPC is provided with a Network Address Translation (NAT) gateway, the second VPC is provided with a remote connection gateway, the NAT gateway is configured with a first address, the remote connection gateway is configured with a second address, the first address and the second address belong to the private network address field of the second VPC, the first address is different from the second address, and the remote connection gateway is remotely connected with the subnet,
    the router of the first VPC receives a message sent by a first virtual machine in the first VPC, wherein a source address of the message is a private network address of the first virtual machine, and a destination address of the message is the second address;
    the router of the first VPC forwards the message to the NAT gateway according to a first routing rule;
    the NAT gateway modifies the source address of the message into the first address, modifies the destination address into the private network address of the second device in the subnet, and forwards the modified message to the router of the second VPC, wherein the router of the second VPC is provided with a second routing rule, and the first routing rule comprises: the packet whose destination address belongs to the private network address field of the second VPC needs to be forwarded to the NAT gateway, and the second routing rule includes: and the message of which the destination address belongs to the private network address field of the subnet needs to be forwarded to the remote connection gateway of the second VPC.
  20. The system of claim 19,
    the router of the second VPC also sends the received message to the remote connection gateway according to the second routing rule;
    and the remote connection gateway receives the message and sends the message to the subnet.
  21. A computing device comprising at least one memory for storing program instructions and at least one processor executing the program instructions to perform the method of any of claims 1 to 4.
  22. A computing device comprising at least one memory for program instructions and at least one processor that executes the program instructions to perform the method of any of claims 5 to 8.
CN202080097806.0A 2019-05-10 2020-09-04 Virtual private cloud and cloud data center communication, configuration method and related device Active CN115699699B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202310745229.7A CN116800712A (en) 2019-05-10 2020-09-04 Virtual private cloud and cloud data center communication and configuration method and related device

Applications Claiming Priority (4)

Application Number Priority Date Filing Date Title
CN201910389727 2019-05-10
CN201911424828.9A CN111917893B (en) 2019-05-10 2019-12-31 Virtual private cloud and cloud data center communication, configuration method and related device
CN2019114248289 2019-12-31
PCT/CN2020/113370 WO2021135344A1 (en) 2019-05-10 2020-09-04 Virtual private cloud and non-public cloud data center communication method, virtual private cloud and non-public cloud data center communication configuration method, and related apparatuses

Related Child Applications (1)

Application Number Title Priority Date Filing Date
CN202310745229.7A Division CN116800712A (en) 2019-05-10 2020-09-04 Virtual private cloud and cloud data center communication and configuration method and related device

Publications (2)

Publication Number Publication Date
CN115699699A true CN115699699A (en) 2023-02-03
CN115699699B CN115699699B (en) 2023-05-12

Family

ID=73242485

Family Applications (6)

Application Number Title Priority Date Filing Date
CN201911424828.9A Active CN111917893B (en) 2019-05-10 2019-12-31 Virtual private cloud and cloud data center communication, configuration method and related device
CN201911424858.XA Active CN111917649B (en) 2019-05-10 2019-12-31 Virtual private cloud communication and configuration method and related device
CN202080097806.0A Active CN115699699B (en) 2019-05-10 2020-09-04 Virtual private cloud and cloud data center communication, configuration method and related device
CN202310745229.7A Pending CN116800712A (en) 2019-05-10 2020-09-04 Virtual private cloud and cloud data center communication and configuration method and related device
CN202080097771.0A Active CN116057910B (en) 2019-05-10 2020-09-04 Virtual private cloud communication and configuration method and related device
CN202311654518.2A Pending CN117692334A (en) 2019-05-10 2020-09-04 Virtual private cloud communication and configuration method and related device

Family Applications Before (2)

Application Number Title Priority Date Filing Date
CN201911424828.9A Active CN111917893B (en) 2019-05-10 2019-12-31 Virtual private cloud and cloud data center communication, configuration method and related device
CN201911424858.XA Active CN111917649B (en) 2019-05-10 2019-12-31 Virtual private cloud communication and configuration method and related device

Family Applications After (3)

Application Number Title Priority Date Filing Date
CN202310745229.7A Pending CN116800712A (en) 2019-05-10 2020-09-04 Virtual private cloud and cloud data center communication and configuration method and related device
CN202080097771.0A Active CN116057910B (en) 2019-05-10 2020-09-04 Virtual private cloud communication and configuration method and related device
CN202311654518.2A Pending CN117692334A (en) 2019-05-10 2020-09-04 Virtual private cloud communication and configuration method and related device

Country Status (6)

Country Link
US (1) US20220337545A1 (en)
EP (3) EP4084438B1 (en)
JP (1) JP7701343B2 (en)
KR (2) KR20220134554A (en)
CN (6) CN111917893B (en)
WO (2) WO2021135345A1 (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2024188167A1 (en) * 2023-03-10 2024-09-19 华为云计算技术有限公司 Tunnel technology-based packet processing method and apparatus
WO2024239586A1 (en) * 2023-05-22 2024-11-28 华为云计算技术有限公司 Cloud system based on public cloud service, packet processing method, and related device

Families Citing this family (25)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN114640646B (en) * 2020-12-01 2024-01-02 天翼云科技有限公司 System, device and method for binding container public network IP based on ARP proxy
CN112866077B (en) * 2021-02-26 2022-06-14 哈尔滨工业大学(威海) Large-scale automatic networking method, management system, equipment and storage medium for modality fusion
US11838273B2 (en) * 2021-03-29 2023-12-05 Amazon Technologies, Inc. Extending cloud-based virtual private networks to radio-based networks
CN112804112B (en) * 2021-04-12 2021-07-30 杭州网银互联科技股份有限公司 A method for multi-cloud access in SD-WAN network environment
CN113783781A (en) * 2021-08-13 2021-12-10 济南浪潮数据技术有限公司 Method and device for interworking between virtual private clouds
CN114025010B (en) * 2021-10-20 2024-04-16 北京奥星贝斯科技有限公司 Method for establishing connection and network equipment
CN114448667B (en) * 2021-12-23 2023-08-08 天翼云科技有限公司 Data transmission method, device and equipment
CN114285661B (en) * 2021-12-28 2023-06-30 中国银联股份有限公司 Private network access method, device, equipment and storage medium
CN114095556B (en) * 2022-01-20 2022-04-22 武汉锂钠氪锶科技有限公司 Home private cloud construction method and private cloud system
CN116527639A (en) * 2022-01-24 2023-08-01 华为云计算技术有限公司 Address space recommending method and device and related equipment
CN114726827B (en) * 2022-03-31 2022-11-15 阿里云计算有限公司 Multi-cluster service system, service access and information configuration method, device and medium
KR102742292B1 (en) * 2022-04-06 2024-12-11 주식회사 카카오엔터프라이즈 Vpc controller and controlling method thereof
CN117201574A (en) * 2022-05-30 2023-12-08 华为云计算技术有限公司 A communication method and related products between VPCs based on public cloud
CN115499434B (en) * 2022-07-29 2024-10-01 天翼云科技有限公司 Traffic forwarding across VPCs
CN115426313B (en) * 2022-08-31 2023-08-18 中电云数智科技有限公司 NAT optimization device and method based on OVN virtual machine network
CN115834686A (en) * 2022-11-16 2023-03-21 阿里巴巴(中国)有限公司 Network communication method and forwarding network
CN118316906A (en) * 2022-12-30 2024-07-09 华为云计算技术有限公司 Serverless function configuration method, device and system based on cloud computing technology
CN116233068B (en) * 2023-01-29 2025-05-27 浪潮通信技术有限公司 Subnet construction method and device of virtual private cloud, electronic equipment and storage medium
CN118473856A (en) * 2023-02-07 2024-08-09 京东科技信息技术有限公司 Method and device for trunking communication, storage medium and electronic equipment
KR102694199B1 (en) * 2023-04-21 2024-08-13 주식회사 엔드포인트랩 L2-based virtual private network management device for network separation between apartment houses
US12212494B2 (en) * 2023-04-21 2025-01-28 VMware LLC Dynamic grouping of network segments for forwarding data message flows from machines of network segment groups to an external network through different edge forwarding elements
CN116582516B (en) * 2023-07-12 2023-09-19 腾讯科技(深圳)有限公司 Data transmission method, device, system, medium and program product
US12323318B1 (en) * 2024-03-06 2025-06-03 TXOne Networks Inc. Network management device and method for updating rules
CN119603356A (en) * 2024-11-05 2025-03-11 新华三信息安全技术有限公司 A cloud platform and its configuration method and configuration device
CN119583441A (en) * 2024-12-06 2025-03-07 天翼云科技有限公司 Message forwarding method, device, computer-readable storage medium, and program product

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106559511A (en) * 2016-10-18 2017-04-05 上海优刻得信息科技有限公司 Cloud system, high in the clouds public service system and the exchanging visit method for cloud system
CN107864061A (en) * 2017-11-15 2018-03-30 北京易讯通信息技术股份有限公司 A kind of method of virtual machine port speed constraint and mirror image in private clound
CN109450905A (en) * 2018-11-20 2019-03-08 郑州云海信息技术有限公司 Transmit the method and apparatus and system of data
WO2019071464A1 (en) * 2017-10-11 2019-04-18 华为技术有限公司 Method, apparatus and system for domain name resolution in data center system

Family Cites Families (35)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US7099319B2 (en) * 2002-01-23 2006-08-29 International Business Machines Corporation Virtual private network and tunnel gateway with multiple overlapping, remote subnets
US6907039B2 (en) * 2002-07-20 2005-06-14 Redback Networks Inc. Method and apparatus for routing and forwarding between virtual routers within a single network element
US7840701B2 (en) * 2007-02-21 2010-11-23 Array Networks, Inc. Dynamic system and method for virtual private network (VPN) packet level routing using dual-NAT method
US8194674B1 (en) * 2007-12-20 2012-06-05 Quest Software, Inc. System and method for aggregating communications and for translating between overlapping internal network addresses and unique external network addresses
US20110110377A1 (en) * 2009-11-06 2011-05-12 Microsoft Corporation Employing Overlays for Securing Connections Across Networks
CN102387061B (en) * 2011-10-21 2014-05-07 华为技术有限公司 Method, device and system for accessing VPC (virtual private cloud) to VPN (virtual private network)
CN103095543B (en) * 2011-11-07 2016-10-05 华为技术有限公司 The method and apparatus of VPN (virtual private network) docking between territory
CN103023898B (en) * 2012-12-03 2016-05-11 杭州迪普科技有限公司 A kind of method and device of accessing VPN service end Intranet resource
US9515985B2 (en) * 2013-03-01 2016-12-06 Verizon Patent And Licensing Inc. Platform for private internet protocol (IP) cloud services
US9584445B2 (en) * 2013-05-07 2017-02-28 Equinix, Inc. Direct connect virtual private interface for a one to many connection with multiple virtual private clouds
KR20150079236A (en) * 2013-12-31 2015-07-08 한국전자통신연구원 Virtual private network gateway and method for secure communication thereof
US20160072764A1 (en) * 2014-09-10 2016-03-10 T-Mobile Usa, Inc. Dynamic double network address translator
CN105591955B (en) * 2015-10-30 2019-07-09 新华三技术有限公司 A kind of method and apparatus of message transmissions
US10348556B2 (en) * 2016-06-02 2019-07-09 Alibaba Group Holding Limited Method and network infrastructure for a direct public traffic connection within a datacenter
US9992154B2 (en) * 2016-06-30 2018-06-05 Juniper Networks, Inc. Layer 3 convergence for EVPN link failure
US10873891B2 (en) * 2016-07-06 2020-12-22 Oceus Networks, Llc Secure network rollover
US9992086B1 (en) * 2016-08-23 2018-06-05 Amazon Technologies, Inc. External health checking of virtual private cloud network environments
CN107948086A (en) * 2016-10-12 2018-04-20 北京金山云网络技术有限公司 A kind of data packet sending method, device and mixed cloud network system
CN106789367A (en) * 2017-02-23 2017-05-31 郑州云海信息技术有限公司 The construction method and device of a kind of network system
US10791089B2 (en) * 2017-03-29 2020-09-29 Hewlett Packard Enterprise Development Lp Converged address translation
US10447498B2 (en) * 2017-10-06 2019-10-15 ZenDesk, Inc. Facilitating communications between virtual private clouds hosted by different cloud providers
CN108429680B (en) * 2018-03-07 2020-09-15 北京青云科技股份有限公司 Route configuration method, system, medium and equipment based on virtual private cloud
CN108833251B (en) * 2018-08-01 2021-01-12 北京百度网讯科技有限公司 Method and apparatus for controlling network interconnection
US11196591B2 (en) * 2018-08-24 2021-12-07 Vmware, Inc. Centralized overlay gateway in public cloud
US11374794B2 (en) * 2018-08-24 2022-06-28 Vmware, Inc. Transitive routing in public cloud
CN109451084B (en) * 2018-09-14 2020-12-22 华为技术有限公司 A service access method and device
US11102113B2 (en) * 2018-11-08 2021-08-24 Sap Se Mapping of internet protocol addresses in a multi-cloud computing environment
CN109361764B (en) * 2018-11-29 2021-02-05 杭州数梦工场科技有限公司 Service access method, device and equipment of inter-VPC and readable storage medium
US11240203B1 (en) * 2018-12-07 2022-02-01 Amazon Technologies, Inc. Network segmentation by automatically generated security groups
US11258635B2 (en) * 2018-12-28 2022-02-22 Alibaba Group Holding Limited Overlay network routing using a programmable switch
CN109561171B (en) * 2019-01-22 2021-11-16 北京百度网讯科技有限公司 Configuration method and device of virtual private cloud service
US11206207B1 (en) * 2019-01-29 2021-12-21 Amazon Technologies, Inc. Managed multicast communications across isolated networks
US11252126B1 (en) * 2019-03-28 2022-02-15 Amazon Technologies, Inc. Domain name resolution in environment with interconnected virtual private clouds
US11119739B1 (en) * 2019-06-21 2021-09-14 Amazon Technologies, Inc. Executable programs representing firewall rules for evaluating data packets
US11113046B1 (en) * 2019-09-24 2021-09-07 Amazon Technologies, Inc. Integration and remote control of a pre-assembled computer system into a server for a virtualization service

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106559511A (en) * 2016-10-18 2017-04-05 上海优刻得信息科技有限公司 Cloud system, high in the clouds public service system and the exchanging visit method for cloud system
WO2019071464A1 (en) * 2017-10-11 2019-04-18 华为技术有限公司 Method, apparatus and system for domain name resolution in data center system
CN107864061A (en) * 2017-11-15 2018-03-30 北京易讯通信息技术股份有限公司 A kind of method of virtual machine port speed constraint and mirror image in private clound
CN109450905A (en) * 2018-11-20 2019-03-08 郑州云海信息技术有限公司 Transmit the method and apparatus and system of data

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
ANONYMOUS: "\"Twice NAT configuration example\"" *
IFCONFIG.IT: ""Cisco ASA VPN with over overlapping addresses and twice NAT"" *
SRISURESH M HOLDREGE LUCENT TECHNOLOGIES P: "\"IP Network Address Translator (NAT) Terminology and Considerations\"" *

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2024188167A1 (en) * 2023-03-10 2024-09-19 华为云计算技术有限公司 Tunnel technology-based packet processing method and apparatus
WO2024239586A1 (en) * 2023-05-22 2024-11-28 华为云计算技术有限公司 Cloud system based on public cloud service, packet processing method, and related device

Also Published As

Publication number Publication date
JP7701343B2 (en) 2025-07-01
CN111917649A (en) 2020-11-10
CN111917649B (en) 2022-06-28
EP4084438A4 (en) 2022-12-07
CN116057910B (en) 2023-11-03
EP4503570A3 (en) 2025-03-12
EP4027598B1 (en) 2025-02-12
WO2021135345A1 (en) 2021-07-08
EP4084438B1 (en) 2024-10-02
EP4027598A1 (en) 2022-07-13
CN111917893A (en) 2020-11-10
CN111917893B (en) 2022-07-12
CN117692334A (en) 2024-03-12
EP4503570A2 (en) 2025-02-05
JP2022546802A (en) 2022-11-09
CN116800712A (en) 2023-09-22
KR102828462B1 (en) 2025-07-01
EP4027598A4 (en) 2022-10-26
CN116057910A (en) 2023-05-02
CN115699699B (en) 2023-05-12
EP4084438A1 (en) 2022-11-02
KR20220134555A (en) 2022-10-05
WO2021135344A1 (en) 2021-07-08
US20220337545A1 (en) 2022-10-20
KR20220134554A (en) 2022-10-05

Similar Documents

Publication Publication Date Title
CN115699699A (en) Virtual private cloud and cloud data center communication, configuration method and related device
CN113132201B (en) Communication method and device between VPCs
CN105577548B (en) Message processing method and device in a kind of software defined network
CN110999265B (en) Manage network connectivity between cloud computing service endpoints and virtual machines
US8498295B1 (en) Modular lightweight tunneling mechanisms for transitioning between network layer protocols
CN106209643B (en) Message forwarding method and device
CN110034993B (en) Method, equipment and network system for transmitting data
CN103650424A (en) Implementation method and server of home gateway service function
CN105359465A (en) Support for virtual extensible local area network segments across multiple data center sites
CN106464596A (en) Openflow communication method, system, controller, and service gateway
JP6098192B2 (en) Address generator
WO2016184283A1 (en) Data stream management method and system for virtual machine
CN102546407A (en) Message sending method and device
WO2017080590A1 (en) Technique for exchanging datagrams between application modules
CN118300981A (en) A network address translation gateway configuration method and cloud management platform
US8873569B2 (en) User centric virtual network and method of establishing the same
CN107733800A (en) A kind of SDN message transmitting method and its device
WO2020135381A1 (en) Packet processing method, device, and system
JP6386166B2 (en) Translation method and apparatus between IPv4 and IPv6
CN113163024A (en) Message processing method, server and storage medium
CN101035082B (en) Fragmented message reassembly method and interface board
CN104917687B (en) Message diversion method and device
CN101022426A (en) Method for realizing static network address translation-protocol conversion and gateway equipment
JP5288506B2 (en) Network device, network and route information setting method used therefor
US9998376B2 (en) Control device, communication system, control method, and non-transitory recording medium

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant